pentesting 0.12.13 → 0.16.2

package/dist/chunk-AOJBE232.js

@@ -1,457 +0,0 @@
-// src/core/tools/web-search.ts
-var browser = null;
-var browserContext = null;
-async function getBrowser() {
-  if (!browser) {
-    const { chromium } = await import("playwright");
-    browser = await chromium.launch({
-      headless: true,
-      args: [
-        "--no-sandbox",
-        "--disable-setuid-sandbox",
-        "--disable-dev-shm-usage",
-        "--disable-blink-features=AutomationControlled",
-        "--disable-infobars",
-        "--window-position=0,0",
-        "--ignore-certificate-errors",
-        "--ignore-certificate-errors-spki-list",
-        "--disable-web-security"
-      ]
-    });
-  }
-  return browser;
-}
-var USER_AGENTS = [
-  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36",
-  "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36",
-  "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36",
-  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0"
-];
-async function getFreshContext() {
-  const b = await getBrowser();
-  const userAgent = USER_AGENTS[Math.floor(Math.random() * USER_AGENTS.length)];
-  const context = await b.newContext({
-    userAgent,
-    viewport: { width: 1920, height: 1080 },
-    locale: "en-US",
-    timezoneId: "America/New_York",
-    extraHTTPHeaders: {
-      "Accept-Language": "en-US,en;q=0.9",
-      "Upgrade-Insecure-Requests": "1"
-    }
-  });
-  await context.addInitScript(() => {
-    Object.defineProperty(navigator, "webdriver", { get: () => void 0 });
-    Object.defineProperty(navigator, "languages", { get: () => ["en-US", "en"] });
-    Object.defineProperty(navigator, "plugins", { get: () => [1, 2, 3, 4, 5] });
-    window.chrome = { runtime: {} };
-    const originalQuery = window.navigator.permissions.query;
-    window.navigator.permissions.query = (parameters) => parameters.name === "notifications" ? Promise.resolve({ state: Notification.permission }) : originalQuery(parameters);
-  });
-  return context;
-}
-async function closeBrowser() {
-  if (browserContext) {
-    await browserContext.close();
-    browserContext = null;
-  }
-  if (browser) {
-    await browser.close();
-    browser = null;
-  }
-}
-var WRITEUP_SOURCES = {
-  general: [
-    "site:0xdf.gitlab.io",
-    "site:ippsec.rocks",
-    "site:medium.com",
-    "site:infosecwriteups.com",
-    "site:hackingarticles.in"
-  ],
-  htb: [
-    "site:0xdf.gitlab.io",
-    "site:ippsec.rocks",
-    "site:app.hackthebox.com",
-    '"HackTheBox" OR "HTB"'
-  ],
-  thm: [
-    "site:tryhackme.com",
-    '"TryHackMe" OR "THM"'
-  ],
-  ctf: [
-    "site:ctftime.org",
-    "site:ctf.zeyu2001.com",
-    "site:github.com CTF writeup"
-  ],
-  vulnhub: [
-    "site:vulnhub.com",
-    '"VulnHub" writeup'
-  ]
-};
-var SCENARIO_KEYWORDS = {
-  ad: "Active Directory Kerberos LDAP BloodHound",
-  windows: "Windows privilege escalation PowerShell",
-  linux: "Linux privilege escalation GTFOBins SUID",
-  web: "web exploitation XSS SQLi SSTI RCE",
-  crypto: "cryptography RSA AES cipher",
-  forensics: "forensics memory dump volatility",
-  pwn: "binary exploitation buffer overflow ROP",
-  reversing: "reverse engineering IDA Ghidra",
-  misc: "miscellaneous steganography OSINT"
-};
-async function searchGoogle(query, options = {}) {
-  const { maxResults = 10, timeout = 3e4 } = options;
-  const results = [];
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto("https://www.google.com/?hl=en", {
-      waitUntil: "domcontentloaded"
-    });
-    let searchBox = await page.waitForSelector('textarea[name="q"], input[name="q"]', { timeout: 5e3 }).catch(() => null);
-    if (!searchBox) {
-      const acceptButton = await page.$('button#L2AGLb, button:has-text("Accept all"), button:has-text("I agree"), button:has-text("Agree")');
-      if (acceptButton) {
-        await acceptButton.click();
-        await page.waitForSelector('textarea[name="q"], input[name="q"]', { timeout: 5e3 }).catch(() => null);
-        searchBox = await page.$('textarea[name="q"], input[name="q"]');
-      }
-    }
-    if (searchBox) {
-      await searchBox.fill(query);
-      await page.keyboard.press("Enter");
-    } else {
-      await page.goto("https://www.google.com/search?q=" + encodeURIComponent(query) + "&hl=en", {
-        waitUntil: "domcontentloaded"
-      });
-    }
-    await page.waitForSelector("h3", { timeout: 1e4 }).catch(() => {
-    });
-    const searchResults = await page.$$eval("div.g, div.tF2Cxc, div.MjjYud", (elements) => {
-      return elements.map((el) => {
-        const titleEl = el.querySelector("h3");
-        const linkEl = el.querySelector("a");
-        const snippetEl = el.querySelector("[data-sncf], .VwiC3b, [data-snf], .VwiC3b");
-        return {
-          title: titleEl?.textContent?.trim() || "",
-          url: linkEl?.href || "",
-          snippet: snippetEl?.textContent?.trim() || ""
-        };
-      }).filter((r) => r.title && r.url);
-    });
-    if (searchResults.length === 0) {
-      const title = await page.title();
-      console.log(`Debug: Empty results for Google. Page title: "${title}"`);
-      const body = await page.evaluate(() => document.body.innerText.slice(0, 500));
-      console.log(`Debug: Body snippet: ${body}`);
-    }
-    results.push(...searchResults.slice(0, maxResults).map((r) => ({ ...r, source: "google" })));
-  } catch (error) {
-    console.error("Google search error:", error);
-  } finally {
-    if (page) await page.close();
-  }
-  return results;
-}
-async function searchDuckDuckGo(query, options = {}) {
-  const { maxResults = 10, timeout = 3e4 } = options;
-  const results = [];
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto("https://html.duckduckgo.com/html/?q=" + encodeURIComponent(query), {
-      waitUntil: "domcontentloaded"
-    });
-    const searchResults = await page.$$eval(".result", (elements) => {
-      return elements.map((el) => {
-        const titleEl = el.querySelector(".result__a");
-        const snippetEl = el.querySelector(".result__snippet");
-        return {
-          title: titleEl?.textContent?.trim() || "",
-          url: titleEl?.href || "",
-          snippet: snippetEl?.textContent?.trim() || ""
-        };
-      }).filter((r) => r.title && r.url);
-    });
-    if (searchResults.length === 0) {
-      const title = await page.title();
-      console.log(`Debug: Empty results for DuckDuckGo. Page title: "${title}"`);
-      const body = await page.evaluate(() => document.body.innerText.slice(0, 500));
-      console.log(`Debug: Body snippet: ${body}`);
-    }
-    results.push(...searchResults.slice(0, maxResults).map((r) => ({ ...r, source: "duckduckgo" })));
-  } catch (error) {
-    console.error("DuckDuckGo search error:", error);
-  } finally {
-    if (page) await page.close();
-  }
-  return results;
-}
-async function searchBing(query, options = {}) {
-  const { maxResults = 10, timeout = 3e4 } = options;
-  const results = [];
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto("https://www.bing.com/search?q=" + encodeURIComponent(query) + "&setlang=en&cc=US", {
-      waitUntil: "domcontentloaded"
-    });
-    const searchResults = await page.$$eval(".b_algo", (elements) => {
-      return elements.map((el) => {
-        const titleEl = el.querySelector("h2 a");
-        const snippetEl = el.querySelector(".b_caption p, .b_snippet");
-        return {
-          title: titleEl?.textContent?.trim() || "",
-          url: titleEl?.href || "",
-          snippet: snippetEl?.textContent?.trim() || ""
-        };
-      }).filter((r) => r.title && r.url);
-    });
-    if (searchResults.length === 0) {
-      const title = await page.title();
-      console.log(`Debug: Empty results for Bing. Page title: "${title}"`);
-      const body = await page.evaluate(() => document.body.innerText.slice(0, 500));
-      console.log(`Debug: Body snippet: ${body}`);
-    }
-    results.push(...searchResults.slice(0, maxResults).map((r) => ({ ...r, source: "bing" })));
-  } catch (error) {
-    console.error("Bing search error:", error);
-  } finally {
-    if (page) await page.close();
-  }
-  return results;
-}
-async function searchBrave(query, options = {}) {
-  const { maxResults = 10, timeout = 3e4 } = options;
-  const results = [];
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto("https://search.brave.com/search?q=" + encodeURIComponent(query), {
-      waitUntil: "domcontentloaded"
-    });
-    await page.waitForSelector(".snippet", { timeout: 1e4 }).catch(() => {
-    });
-    const searchResults = await page.$$eval("#results .snippet, .result, article, div.snippet", (elements) => {
-      return elements.map((el) => {
-        const titleEl = el.querySelector("h1, h2, h3, h4, .heading-serp, .snippet-title, .title");
-        const linkEl = el.querySelector("a");
-        const snippetEl = el.querySelector(".snippet-content, .snippet-description, .res-snippet, .description");
-        return {
-          title: titleEl?.textContent?.trim() || "",
-          url: linkEl?.href || "",
-          snippet: snippetEl?.textContent?.trim() || ""
-        };
-      }).filter((r) => r.title && r.url);
-    });
-    if (searchResults.length === 0) {
-      const title = await page.title();
-      console.log(`Debug: Empty results for Brave. Page title: "${title}"`);
-      const body = await page.evaluate(() => document.body.innerText.slice(0, 500));
-      console.log(`Debug: Body snippet: ${body}`);
-    }
-    results.push(...searchResults.slice(0, maxResults).map((r) => ({ ...r, source: "brave" })));
-  } catch (error) {
-    console.error("Brave search error:", error);
-  } finally {
-    if (page) await page.close();
-  }
-  return results;
-}
-async function searchYahoo(query, options = {}) {
-  const { maxResults = 10, timeout = 3e4 } = options;
-  const results = [];
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto("https://search.yahoo.com/search?p=" + encodeURIComponent(query), {
-      waitUntil: "domcontentloaded"
-    });
-    const consent = await page.$('button[name="agree"], .consent-form button');
-    if (consent) await consent.click().catch(() => {
-    });
-    const searchResults = await page.$$eval(".algo, .ovr, .relsrch", (elements) => {
-      return elements.map((el) => {
-        const titleEl = el.querySelector("h3 a");
-        const snippetEl = el.querySelector(".compText, .compText p, p, .fc-secondary");
-        return {
-          title: titleEl?.textContent?.trim() || "",
-          url: titleEl?.href || "",
-          snippet: snippetEl?.textContent?.trim() || ""
-        };
-      }).filter((r) => r.title && r.url);
-    });
-    results.push(...searchResults.slice(0, maxResults).map((r) => ({ ...r, source: "yahoo" })));
-  } catch (error) {
-    console.error("Yahoo search error:", error);
-  } finally {
-    if (page) await page.close();
-  }
-  return results;
-}
-async function unifiedSearch(query, options = {}) {
-  const { maxResults = 10 } = options;
-  const results = [];
-  const yahooResults = await searchYahoo(query, options);
-  results.push(...yahooResults);
-  if (results.length < 5) {
-    const bingResults = await searchBing(query, options);
-    results.push(...bingResults);
-  }
-  if (results.length < 8) {
-    const braveResults = await searchBrave(query, options);
-    results.push(...braveResults);
-  }
-  if (results.length < 10) {
-    const googleResults = await searchGoogle(query, options);
-    results.push(...googleResults);
-  }
-  const uniqueResults = Array.from(new Map(results.map((item) => [item.url, item])).values());
-  return uniqueResults.slice(0, maxResults);
-}
-async function deepSearch(query, options = {}) {
-  const { maxResults = 5, timeout = 3e4, depth = 1 } = options;
-  const results = [];
-  const searchResults = await unifiedSearch(query, { maxResults, timeout });
-  for (const result of searchResults.slice(0, Math.min(depth * 3, maxResults))) {
-    let page = null;
-    try {
-      const context = await getFreshContext();
-      page = await context.newPage();
-      if (!page) continue;
-      page.setDefaultTimeout(timeout);
-      await page.goto(result.url, { waitUntil: "domcontentloaded" });
-      const content = await page.evaluate(() => {
-        document.querySelectorAll("script, style, nav, footer, header, aside").forEach((el) => el.remove());
-        const main = document.querySelector("main, article, .content, #content, .post-content") || document.body;
-        return main.textContent?.replace(/\s+/g, " ").trim().slice(0, 5e3) || "";
-      });
-      const links = await page.$$eval("a[href]", (anchors) => {
-        return anchors.map((a) => a.href).filter((href) => href.startsWith("http")).slice(0, 10);
-      });
-      results.push({
-        ...result,
-        content,
-        links,
-        depth: 0
-      });
-    } catch (error) {
-      results.push({ ...result, content: "", links: [], depth: 0 });
-    } finally {
-      if (page) await page.close();
-    }
-  }
-  return results;
-}
-async function fetchUrlContent(url, options = {}) {
-  const { timeout = 3e4 } = options;
-  let page = null;
-  try {
-    const context = await getFreshContext();
-    page = await context.newPage();
-    if (!page) throw new Error("Failed to create page");
-    page.setDefaultTimeout(timeout);
-    await page.goto(url, { waitUntil: "domcontentloaded" });
-    const content = await page.evaluate(() => {
-      document.querySelectorAll("script, style, nav, footer, header").forEach((el) => el.remove());
-      return document.body.textContent?.replace(/\s+/g, " ").trim() || "";
-    });
-    return content;
-  } catch (error) {
-    return "";
-  } finally {
-    if (page) await page.close();
-  }
-}
-async function searchCVE(query) {
-  return unifiedSearch(`${query} site:cve.mitre.org OR site:nvd.nist.gov`);
-}
-async function searchExploits(query) {
-  return unifiedSearch(`${query} site:exploit-db.com OR site:github.com exploit POC`);
-}
-async function searchWriteups(query, platform = "general") {
-  const sources = WRITEUP_SOURCES[platform] || WRITEUP_SOURCES.general;
-  const siteQuery = sources.join(" OR ");
-  return unifiedSearch(`${query} writeup walkthrough ${siteQuery}`);
-}
-async function searchMachineWriteup(machineName) {
-  const [writeups, videos] = await Promise.all([
-    unifiedSearch(`"${machineName}" HackTheBox OR TryHackMe writeup walkthrough site:0xdf.gitlab.io OR site:medium.com`),
-    unifiedSearch(`"${machineName}" ippsec site:youtube.com OR site:ippsec.rocks`)
-  ]);
-  return { writeups, videos };
-}
-async function searchByScenario(query, scenario) {
-  const keywords = SCENARIO_KEYWORDS[scenario] || "";
-  return unifiedSearch(`${query} ${keywords} writeup walkthrough exploit`);
-}
-async function searchADWriteups(query) {
-  return unifiedSearch(
-    `${query} Active Directory Kerberos LDAP BloodHound GetNPUsers AS-REP Roasting Kerberoasting DCSync Pass-the-Hash writeup`
-  );
-}
-async function searchLinuxPrivesc(query) {
-  return unifiedSearch(
-    `${query} Linux privilege escalation SUID GTFOBins sudo capabilities cronjob kernel exploit writeup`
-  );
-}
-async function searchWindowsPrivesc(query) {
-  return unifiedSearch(
-    `${query} Windows privilege escalation SeImpersonate JuicyPotato PrintSpoofer token impersonation UAC bypass writeup`
-  );
-}
-async function securityResearch(query) {
-  const [general, cves, exploits, writeups] = await Promise.all([
-    unifiedSearch(query),
-    searchCVE(query),
-    searchExploits(query),
-    searchWriteups(query)
-  ]);
-  return { general, cves, exploits, writeups };
-}
-async function ctfResearch(boxName, scenario) {
-  const [machine, scenarioResults, exploits, deepContent] = await Promise.all([
-    searchMachineWriteup(boxName),
-    scenario ? searchByScenario(boxName, scenario) : Promise.resolve([]),
-    searchExploits(boxName),
-    deepSearch(`${boxName} HackTheBox writeup`, { maxResults: 3, depth: 1 })
-  ]);
-  return { machine, scenario: scenarioResults, exploits, deepContent };
-}
-
-export {
-  closeBrowser,
-  searchGoogle,
-  searchDuckDuckGo,
-  searchBing,
-  searchBrave,
-  searchYahoo,
-  unifiedSearch,
-  deepSearch,
-  fetchUrlContent,
-  searchCVE,
-  searchExploits,
-  searchWriteups,
-  searchMachineWriteup,
-  searchByScenario,
-  searchADWriteups,
-  searchLinuxPrivesc,
-  searchWindowsPrivesc,
-  securityResearch,
-  ctfResearch
-};